(blog.verichains.io)

88 points quyleanh | 2 comments | 28 Mar 25 07:04 UTC | HN request time: 0.416s | source

1. musjleman ◴[31 Mar 25 17:23 UTC] No.43537447[source]▶

Showing a 5000$ bounty example of "enumerating all apps" sounds a bit disingenuous when this is more of a "check if this exact app by bundle name was installed not through store.

I also don't think that this deserves to be called anything as scary as an "zero day exploit", "sandbox escape".

replies(1): >>43537719 #

2. bri3d ◴[31 Mar 25 17:49 UTC] No.43537719[source]▶

>>43537447 (TP) #

There seems to be some weird beef in the background here with the TrollStore developers and Verichains, but Verichains come out looking much better here by naming the exploit what it actually is rather than misleading puffery around “sandbox escape 0days!!!111”

I think app enumeration info leaks generically might be eligible for that bounty, though, so mentioning it doesn’t seem too wild.

↑

Technical Analysis – Improper Use of Private iOS APIs in Vietnamese Banking Apps